To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.admin.generalOpen lugnet.admin.general in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Administrative / General / 5560
5559  |  5561
Subject: 
 Re: New feature: Article rating
Newsgroups: 
 lugnet.admin.general
Date: 
 Sun, 26 Mar 2000 18:00:24 GMT
Highlighted: 
 (details)
Viewed: 
 1658 times
  
In lugnet.admin.general, Richard Franks writes:
I think people should be able to be fully signed in without machine-generated
passwords - otherwise it is discriminating against those who use a lot of
different machines. What about using the double-login idea with two distinct
user-definable passwords?




Or making it (if you can legally do so) the *users* responsibility to choose
a secure password, by making them click a "I accept total responsibility if
LUGNET is hacked into and this password is used to get into some of my other
accounts because I'm too dumb to use a unique password". But in a (more
polite?) legalise fashion.

That would potentially shift some of the blame if something bad did happen to
someone, but could it prevent blame or suspicions from occurring in the first
place?  It seems to me that such wording or agreement would not actually
lessen the potential maximum amount of damage.  We're talking about a type of
damage where there is an infinite amount of difference between impossible and
extremely improbable, and no difference between improbable and extremely
improbable.  If someone's account on some other system did ever get compromised
somehow and they'd used the same password on LUGNET, it doesn't protect LUGNET
in any way except financially if someone has agreed not to hold LUGNET
responsible for problems of that nature.

--Todd

p.s.  It's already covered, BTW, in the Terms of Use Agreement, under agreeing
to indemnify and hold LUGNET harmless for any problems.



Message is in Reply To:
  Re: New feature: Article rating
 
(...) I think people should be able to be fully signed in without machine-generated passwords - otherwise it is discriminating against those who use a lot of different machines. What about using the double-login idea with two distinct user-definable (...) (24 years ago, 26-Mar-00, to lugnet.admin.general)  

309 Messages in This Thread:
(Inline display suppressed due to large size. Click Dots below to view.)
Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    
Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR